Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1944-80-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    a24355cb9a294b2f6e63cc06ab8c6dfe

  • SHA1

    cbcba957c343dfa119efab792677917a814b49d0

  • SHA256

    d071e5113f16da1fcd489984c3d730a31eb01d3ebb8c2a26877d346f7b0df8e7

  • SHA512

    55ef8fe9b1fdd6a851dce69e287fb03f269ee9521ed0fca3efc6215a08262a738e0d5c46db9a34260c0f7ef2caebb22071834b713d206b2d02f407c62b6fcf8a

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGmSHIG6mQwGmfOQd8YhY0/EVUGn:Mcd6bUfFdXThUvcd6bUfFdXTiUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/perez/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1944-80-0x00000000004139DE-mapping.dmp